436 lines
16 KiB
Ruby
436 lines
16 KiB
Ruby
require "test_helper"
|
|
|
|
class UserBlocksControllerTest < ActionController::TestCase
|
|
fixtures :users, :user_roles, :user_blocks
|
|
|
|
##
|
|
# test all routes which lead to this controller
|
|
def test_routes
|
|
assert_routing(
|
|
{ :path => "/blocks/new/username", :method => :get },
|
|
{ :controller => "user_blocks", :action => "new", :display_name => "username" }
|
|
)
|
|
|
|
assert_routing(
|
|
{ :path => "/user_blocks", :method => :get },
|
|
{ :controller => "user_blocks", :action => "index" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user_blocks/new", :method => :get },
|
|
{ :controller => "user_blocks", :action => "new" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user_blocks", :method => :post },
|
|
{ :controller => "user_blocks", :action => "create" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user_blocks/1", :method => :get },
|
|
{ :controller => "user_blocks", :action => "show", :id => "1" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user_blocks/1/edit", :method => :get },
|
|
{ :controller => "user_blocks", :action => "edit", :id => "1" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user_blocks/1", :method => :put },
|
|
{ :controller => "user_blocks", :action => "update", :id => "1" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user_blocks/1", :method => :delete },
|
|
{ :controller => "user_blocks", :action => "destroy", :id => "1" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/blocks/1/revoke", :method => :get },
|
|
{ :controller => "user_blocks", :action => "revoke", :id => "1" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/blocks/1/revoke", :method => :post },
|
|
{ :controller => "user_blocks", :action => "revoke", :id => "1" }
|
|
)
|
|
|
|
assert_routing(
|
|
{ :path => "/user/username/blocks", :method => :get },
|
|
{ :controller => "user_blocks", :action => "blocks_on", :display_name => "username" }
|
|
)
|
|
assert_routing(
|
|
{ :path => "/user/username/blocks_by", :method => :get },
|
|
{ :controller => "user_blocks", :action => "blocks_by", :display_name => "username" }
|
|
)
|
|
end
|
|
|
|
##
|
|
# test the index action
|
|
def test_index
|
|
# The list of blocks should load
|
|
get :index
|
|
assert_response :success
|
|
assert_select "table#block_list", :count => 1 do
|
|
assert_select "tr", 4
|
|
assert_select "a[href='#{user_block_path(user_blocks(:active_block))}']", 1
|
|
assert_select "a[href='#{user_block_path(user_blocks(:expired_block))}']", 1
|
|
assert_select "a[href='#{user_block_path(user_blocks(:revoked_block))}']", 1
|
|
end
|
|
end
|
|
|
|
##
|
|
# test the show action
|
|
def test_show
|
|
# Viewing a block should fail when no ID is given
|
|
assert_raise ActionController::UrlGenerationError do
|
|
get :show
|
|
end
|
|
|
|
# Viewing a block should fail when a bogus ID is given
|
|
get :show, :id => 99999
|
|
assert_response :not_found
|
|
assert_template "not_found"
|
|
assert_select "p", "Sorry, the user block with ID 99999 could not be found."
|
|
|
|
# Viewing an expired block should work
|
|
get :show, :id => user_blocks(:expired_block)
|
|
assert_response :success
|
|
|
|
# Viewing a revoked block should work
|
|
get :show, :id => user_blocks(:revoked_block)
|
|
assert_response :success
|
|
|
|
# Viewing an active block should work, but shouldn't mark it as seen
|
|
get :show, :id => user_blocks(:active_block)
|
|
assert_response :success
|
|
assert_equal true, UserBlock.find(user_blocks(:active_block).id).needs_view
|
|
|
|
# Login as the blocked user
|
|
session[:user] = users(:blocked_user).id
|
|
|
|
# Now viewing it should mark it as seen
|
|
get :show, :id => user_blocks(:active_block)
|
|
assert_response :success
|
|
assert_equal false, UserBlock.find(user_blocks(:active_block).id).needs_view
|
|
end
|
|
|
|
##
|
|
# test the new action
|
|
def test_new
|
|
# Check that the block creation page requires us to login
|
|
get :new, :display_name => users(:normal_user).display_name
|
|
assert_redirected_to login_path(:referer => new_user_block_path(:display_name => users(:normal_user).display_name))
|
|
|
|
# Login as a normal user
|
|
session[:user] = users(:public_user).id
|
|
|
|
# Check that normal users can't load the block creation page
|
|
get :new, :display_name => users(:normal_user).display_name
|
|
assert_redirected_to user_blocks_path
|
|
assert_equal "You need to be a moderator to perform that action.", flash[:error]
|
|
|
|
# Login as a moderator
|
|
session[:user] = users(:moderator_user).id
|
|
|
|
# Check that the block creation page loads for moderators
|
|
get :new, :display_name => users(:normal_user).display_name
|
|
assert_response :success
|
|
assert_select "form#new_user_block", :count => 1 do
|
|
assert_select "textarea#user_block_reason", :count => 1
|
|
assert_select "select#user_block_period", :count => 1
|
|
assert_select "input#user_block_needs_view[type='checkbox']", :count => 1
|
|
assert_select "input#display_name[type='hidden']", :count => 1
|
|
assert_select "input[type='submit'][value='Create block']", :count => 1
|
|
end
|
|
|
|
# We should get an error if no user is specified
|
|
get :new
|
|
assert_response :not_found
|
|
assert_template "user/no_such_user"
|
|
assert_select "h1", "The user does not exist"
|
|
|
|
# We should get an error if the user doesn't exist
|
|
get :new, :display_name => "non_existent_user"
|
|
assert_response :not_found
|
|
assert_template "user/no_such_user"
|
|
assert_select "h1", "The user non_existent_user does not exist"
|
|
end
|
|
|
|
##
|
|
# test the edit action
|
|
def test_edit
|
|
# Check that the block edit page requires us to login
|
|
get :edit, :id => user_blocks(:active_block).id
|
|
assert_redirected_to login_path(:referer => edit_user_block_path(:id => user_blocks(:active_block).id))
|
|
|
|
# Login as a normal user
|
|
session[:user] = users(:public_user).id
|
|
|
|
# Check that normal users can't load the block edit page
|
|
get :edit, :id => user_blocks(:active_block).id
|
|
assert_redirected_to user_blocks_path
|
|
assert_equal "You need to be a moderator to perform that action.", flash[:error]
|
|
|
|
# Login as a moderator
|
|
session[:user] = users(:moderator_user).id
|
|
|
|
# Check that the block edit page loads for moderators
|
|
get :edit, :id => user_blocks(:active_block).id
|
|
assert_response :success
|
|
assert_select "form#edit_user_block_#{user_blocks(:active_block).id}", :count => 1 do
|
|
assert_select "textarea#user_block_reason", :count => 1
|
|
assert_select "select#user_block_period", :count => 1
|
|
assert_select "input#user_block_needs_view[type='checkbox']", :count => 1
|
|
assert_select "input[type='submit'][value='Update block']", :count => 1
|
|
end
|
|
|
|
# We should get an error if no user is specified
|
|
assert_raise ActionController::UrlGenerationError do
|
|
get :edit
|
|
end
|
|
|
|
# We should get an error if the user doesn't exist
|
|
get :edit, :id => 99999
|
|
assert_response :not_found
|
|
assert_template "not_found"
|
|
assert_select "p", "Sorry, the user block with ID 99999 could not be found."
|
|
end
|
|
|
|
##
|
|
# test the create action
|
|
def test_create
|
|
# Not logged in yet, so creating a block should fail
|
|
post :create
|
|
assert_response :forbidden
|
|
|
|
# Login as a normal user
|
|
session[:user] = users(:public_user).id
|
|
|
|
# Check that normal users can't create blocks
|
|
post :create
|
|
assert_response :forbidden
|
|
|
|
# Login as a moderator
|
|
session[:user] = users(:moderator_user).id
|
|
|
|
# A bogus block period should result in an error
|
|
assert_no_difference "UserBlock.count" do
|
|
post :create,
|
|
:display_name => users(:unblocked_user).display_name,
|
|
:user_block_period => "99"
|
|
end
|
|
assert_redirected_to new_user_block_path(:display_name => users(:unblocked_user).display_name)
|
|
assert_equal "The blocking period must be one of the values selectable in the drop-down list.", flash[:error]
|
|
|
|
# Check that creating a block works
|
|
assert_difference "UserBlock.count", 1 do
|
|
post :create,
|
|
:display_name => users(:unblocked_user).display_name,
|
|
:user_block_period => "12",
|
|
:user_block => { :needs_view => false, :reason => "Vandalism" }
|
|
end
|
|
id = UserBlock.order(:id).ids.last
|
|
assert_redirected_to user_block_path(:id => id)
|
|
assert_equal "Created a block on user #{users(:unblocked_user).display_name}.", flash[:notice]
|
|
b = UserBlock.find(id)
|
|
assert_in_delta Time.now, b.created_at, 1
|
|
assert_in_delta Time.now, b.updated_at, 1
|
|
assert_in_delta Time.now + 12.hour, b.ends_at, 1
|
|
assert_equal false, b.needs_view
|
|
assert_equal "Vandalism", b.reason
|
|
assert_equal "markdown", b.reason_format
|
|
assert_equal users(:moderator_user).id, b.creator_id
|
|
|
|
# We should get an error if no user is specified
|
|
post :create
|
|
assert_response :not_found
|
|
assert_template "user/no_such_user"
|
|
assert_select "h1", "The user does not exist"
|
|
|
|
# We should get an error if the user doesn't exist
|
|
post :create, :display_name => "non_existent_user"
|
|
assert_response :not_found
|
|
assert_template "user/no_such_user"
|
|
assert_select "h1", "The user non_existent_user does not exist"
|
|
end
|
|
|
|
##
|
|
# test the update action
|
|
def test_update
|
|
# Not logged in yet, so updating a block should fail
|
|
put :update, :id => user_blocks(:active_block).id
|
|
assert_response :forbidden
|
|
|
|
# Login as a normal user
|
|
session[:user] = users(:public_user).id
|
|
|
|
# Check that normal users can't update blocks
|
|
put :update, :id => user_blocks(:active_block).id
|
|
assert_response :forbidden
|
|
|
|
# Login as the wrong moderator
|
|
session[:user] = users(:second_moderator_user).id
|
|
|
|
# Check that only the person who created a block can update it
|
|
assert_no_difference "UserBlock.count" do
|
|
put :update,
|
|
:id => user_blocks(:active_block).id,
|
|
:user_block_period => "12",
|
|
:user_block => { :needs_view => true, :reason => "Vandalism" }
|
|
end
|
|
assert_redirected_to edit_user_block_path(:id => user_blocks(:active_block).id)
|
|
assert_equal "Only the moderator who created this block can edit it.", flash[:error]
|
|
|
|
# Login as the correct moderator
|
|
session[:user] = users(:moderator_user).id
|
|
|
|
# A bogus block period should result in an error
|
|
assert_no_difference "UserBlock.count" do
|
|
put :update,
|
|
:id => user_blocks(:active_block).id,
|
|
:user_block_period => "99"
|
|
end
|
|
assert_redirected_to edit_user_block_path(:id => user_blocks(:active_block).id)
|
|
assert_equal "The blocking period must be one of the values selectable in the drop-down list.", flash[:error]
|
|
|
|
# Check that updating a block works
|
|
assert_no_difference "UserBlock.count" do
|
|
put :update,
|
|
:id => user_blocks(:active_block).id,
|
|
:user_block_period => "12",
|
|
:user_block => { :needs_view => true, :reason => "Vandalism" }
|
|
end
|
|
assert_redirected_to user_block_path(:id => user_blocks(:active_block).id)
|
|
assert_equal "Block updated.", flash[:notice]
|
|
b = UserBlock.find(user_blocks(:active_block).id)
|
|
assert_in_delta Time.now, b.updated_at, 1
|
|
assert_equal true, b.needs_view
|
|
assert_equal "Vandalism", b.reason
|
|
|
|
# We should get an error if no block ID is specified
|
|
assert_raise ActionController::UrlGenerationError do
|
|
put :update
|
|
end
|
|
|
|
# We should get an error if the block doesn't exist
|
|
put :update, :id => 99999
|
|
assert_response :not_found
|
|
assert_template "not_found"
|
|
assert_select "p", "Sorry, the user block with ID 99999 could not be found."
|
|
end
|
|
|
|
##
|
|
# test the revoke action
|
|
def test_revoke
|
|
# Check that the block revoke page requires us to login
|
|
get :revoke, :id => user_blocks(:active_block).id
|
|
assert_redirected_to login_path(:referer => revoke_user_block_path(:id => user_blocks(:active_block).id))
|
|
|
|
# Login as a normal user
|
|
session[:user] = users(:public_user).id
|
|
|
|
# Check that normal users can't load the block revoke page
|
|
get :revoke, :id => user_blocks(:active_block).id
|
|
assert_redirected_to user_blocks_path
|
|
assert_equal "You need to be a moderator to perform that action.", flash[:error]
|
|
|
|
# Login as a moderator
|
|
session[:user] = users(:moderator_user).id
|
|
|
|
# Check that the block revoke page loads for moderators
|
|
get :revoke, :id => user_blocks(:active_block).id
|
|
assert_response :success
|
|
assert_template "revoke"
|
|
assert_select "form", :count => 1 do
|
|
assert_select "input#confirm[type='checkbox']", :count => 1
|
|
assert_select "input[type='submit'][value='Revoke!']", :count => 1
|
|
end
|
|
|
|
# Check that revoking a block works
|
|
post :revoke, :id => user_blocks(:active_block).id, :confirm => true
|
|
assert_redirected_to user_block_path(:id => user_blocks(:active_block).id)
|
|
b = UserBlock.find(user_blocks(:active_block).id)
|
|
assert_in_delta Time.now, b.ends_at, 1
|
|
|
|
# We should get an error if no block ID is specified
|
|
assert_raise ActionController::UrlGenerationError do
|
|
get :revoke
|
|
end
|
|
|
|
# We should get an error if the block doesn't exist
|
|
get :revoke, :id => 99999
|
|
assert_response :not_found
|
|
assert_template "not_found"
|
|
assert_select "p", "Sorry, the user block with ID 99999 could not be found."
|
|
end
|
|
|
|
##
|
|
# test the blocks_on action
|
|
def test_blocks_on
|
|
# Asking for a list of blocks with no user name should fail
|
|
assert_raise ActionController::UrlGenerationError do
|
|
get :blocks_on
|
|
end
|
|
|
|
# Asking for a list of blocks with a bogus user name should fail
|
|
get :blocks_on, :display_name => "non_existent_user"
|
|
assert_response :not_found
|
|
assert_template "user/no_such_user"
|
|
assert_select "h1", "The user non_existent_user does not exist"
|
|
|
|
# Check the list of blocks for a user that has never been blocked
|
|
get :blocks_on, :display_name => users(:normal_user).display_name
|
|
assert_response :success
|
|
assert_select "table#block_list", false
|
|
assert_select "p", "#{users(:normal_user).display_name} has not been blocked yet."
|
|
|
|
# Check the list of blocks for a user that is currently blocked
|
|
get :blocks_on, :display_name => users(:blocked_user).display_name
|
|
assert_response :success
|
|
assert_select "table#block_list", :count => 1 do
|
|
assert_select "tr", 3
|
|
assert_select "a[href='#{user_block_path(user_blocks(:active_block))}']", 1
|
|
assert_select "a[href='#{user_block_path(user_blocks(:revoked_block))}']", 1
|
|
end
|
|
|
|
# Check the list of blocks for a user that has previously been blocked
|
|
get :blocks_on, :display_name => users(:unblocked_user).display_name
|
|
assert_response :success
|
|
assert_select "table#block_list", :count => 1 do
|
|
assert_select "tr", 2
|
|
assert_select "a[href='#{user_block_path(user_blocks(:expired_block))}']", 1
|
|
end
|
|
end
|
|
|
|
##
|
|
# test the blocks_by action
|
|
def test_blocks_by
|
|
# Asking for a list of blocks with no user name should fail
|
|
assert_raise ActionController::UrlGenerationError do
|
|
get :blocks_by
|
|
end
|
|
|
|
# Asking for a list of blocks with a bogus user name should fail
|
|
get :blocks_by, :display_name => "non_existent_user"
|
|
assert_response :not_found
|
|
assert_template "user/no_such_user"
|
|
assert_select "h1", "The user non_existent_user does not exist"
|
|
|
|
# Check the list of blocks given by one moderator
|
|
get :blocks_by, :display_name => users(:moderator_user).display_name
|
|
assert_response :success
|
|
assert_select "table#block_list", :count => 1 do
|
|
assert_select "tr", 2
|
|
assert_select "a[href='#{user_block_path(user_blocks(:active_block))}']", 1
|
|
end
|
|
|
|
# Check the list of blocks given by a different moderator
|
|
get :blocks_by, :display_name => users(:second_moderator_user).display_name
|
|
assert_response :success
|
|
assert_select "table#block_list", :count => 1 do
|
|
assert_select "tr", 3
|
|
assert_select "a[href='#{user_block_path(user_blocks(:expired_block))}']", 1
|
|
assert_select "a[href='#{user_block_path(user_blocks(:revoked_block))}']", 1
|
|
end
|
|
|
|
# Check the list of blocks (not) given by a normal user
|
|
get :blocks_by, :display_name => users(:normal_user).display_name
|
|
assert_response :success
|
|
assert_select "table#block_list", false
|
|
assert_select "p", "#{users(:normal_user).display_name} has not made any blocks yet."
|
|
end
|
|
end
|